The Mako Group builds Privacy Program frameworks that can be applied to emerging privacy regulations, such as GDPR and CCPA regulations. Key technical and organizational requirements we perform are:

​

• Develop detailed data inventories following mapping data flows.

• Create detailed mapping of personal information shared with third parties.

• Identify channels for individuals to make personal data requests.

• Create processes for responding to individuals’ queries concerning their personal data (within 30 days for the GDPR and within 45 days for the CCPA).

• Training awareness to data security, as fines under both legislations will prove costly.

• Perform Data Protection Impact Assessments to understand risk within your organization.

• Assist marketing with “do not sell my personal information” buttons or websites, along with operational and procedural measures that need to be taken.